projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 784dc84) | patch
trust machine keyring (MoK) by default
authorLuca Boccassi <bluca@debian.org>
Sat, 7 Oct 2023 09:36:46 +0000 (10:36 +0100)
committerSalvatore Bonaccorso <carnil@debian.org>
Sat, 7 Oct 2023 09:36:46 +0000 (10:36 +0100)
commit8a79514003b4ee18239e3bf37b64896351ea52ec
tree5433a50cf68cce466304e74ede9a71746b0afb37tree | snapshot
parent784dc84aa5d5b468faa46a0aee24cb70fbfabee6commit | diff
trust machine keyring (MoK) by default

Debian always trusted keys in MoK by default. Upstream made it conditional on
a new EFI variable being set. To keep backward compatibility skip this check.

Gbp-Pq: Topic features/all/db-mok-keyring
Gbp-Pq: Name trust-machine-keyring-by-default.patch
security/integrity/platform_certs/machine_keyring.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.